USN-7325-1

Details

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2025-0927)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems:

Media drivers; (CVE-2024-53104)

Affected Packages

Ubuntu:22.04:LTSlinux-aws-6.8

Fixed in:

6.8.0-1024.26~22.04.1

Ubuntu:22.04:LTSlinux-oracle-6.8

Fixed in:

6.8.0-1021.22~22.04.1

Ubuntu:24.04:LTSlinux-aws

Fixed in:

6.8.0-1024.26

Ubuntu:24.04:LTSlinux-oracle

Fixed in:

6.8.0-1021.22

Ubuntu:24.04:LTSlinux-raspi

Fixed in:

6.8.0-1020.24

References

REPORThttps://ubuntu.com/security/CVE-2024-53104 REPORThttps://ubuntu.com/security/CVE-2025-0927 ADVISORYhttps://ubuntu.com/security/notices/USN-7325-1

USN-7325-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline